[kernel-sec-discuss] r4312 - active
Ben Hutchings
benh at moszumanska.debian.org
Wed Apr 13 20:19:19 UTC 2016
Author: benh
Date: 2016-04-13 20:19:19 +0000 (Wed, 13 Apr 2016)
New Revision: 4312
Modified:
active/CVE-2016-2188
Log:
Mark CVE-2016-2188 as needed everywhere, since upstream fix is incomplete
Modified: active/CVE-2016-2188
===================================================================
--- active/CVE-2016-2188 2016-04-13 20:17:11 UTC (rev 4311)
+++ active/CVE-2016-2188 2016-04-13 20:19:19 UTC (rev 4312)
@@ -4,13 +4,15 @@
https://bugzilla.redhat.com/show_bug.cgi?id=1283390
http://seclists.org/bugtraq/2016/Mar/87
http://marc.info/?l=linux-usb&m=145796659429788&w=2
+ https://git.kernel.org/linus/4ec0ef3a82125efc36173062a50624550a900ae0
Notes:
- bwh> Upstream fix looks useless - it handles the case where there
+ bwh> Upstream fix (commit listed above) handles the case where there
bwh> are zero endpoints, but not the case where there are some
- bwh> endpoints but none of the expected type.
+ bwh> endpoints but none of the expected type. So this is not really
+ bwh> fixed anywhere yet.
Bugs:
-upstream: released (v4.6-rc1) [4ec0ef3a82125efc36173062a50624550a900ae0]
-3.16-upstream-stable: pending (3.16.7-ckt27)
+upstream: needed
+3.16-upstream-stable: needed
3.2-upstream-stable: needed
sid: needed
3.16-jessie-security: needed
More information about the kernel-sec-discuss
mailing list